Answer-first summary for fast verification
Answer: Add the users to an IAM user group. Attach the policy to the group., Create a customer managed policy.
To assign a policy to multiple users easily, adding them to an IAM user group and attaching the policy to the group is best practice. To change the policy and create new versions, you need to create a customer managed policy, as AWS managed policies cannot be modified by the user, and inline policies do not support versioning in the same way standalone managed policies do.
Author: Ritesh Yadav
Ultimate access to all questions.
Question #61
A CloudOps engineer wants to provide access to AWS services by attaching an IAM policy to multiple IAM users. The CloudOps engineer also wants to be able to change the policy and create new versions. Which combination of actions will meet these requirements? (Choose two.)
A
Add the users to an IAM service-linked role. Attach the policy to the role.
B
Add the users to an IAM user group. Attach the policy to the group.
C
Create an AWS managed policy.
D
Create a customer managed policy.
E
Create an inline policy.
No comments yet.